$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FD6LpGRj3PYR25a9XgaxCNAeUmY.roa File: FD6LpGRj3PYR25a9XgaxCNAeUmY.roa (raw, json) Hash identifier: rPsLmAzrB7LzvuGIGI4w5FGgucObxRZ7o+IOIXEb1y8= Subject key identifier: 14:3E:8B:A4:64:63:DC:F6:11:DB:96:BD:5E:06:B1:08:D0:1E:52:66 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 23F5 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FD6LpGRj3PYR25a9XgaxCNAeUmY.roa Signing time: Mon 10 Feb 2025 14:18:08 +0000 ROA not before: Mon 10 Feb 2025 14:18:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 122.254.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9205 (0x23f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Feb 10 14:18:08 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=143E8BA46463DCF611DB96BD5E06B108D01E5266 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5b:52:f3:fa:41:7e:64:46:3c:b9:71:76:79: 00:64:27:9b:37:67:43:92:28:f1:2e:fb:46:a1:be: 9c:c1:a7:36:03:1f:79:32:ea:f9:df:8c:7d:8d:b3: 9b:b3:3e:b2:c6:53:f4:85:c9:3b:68:22:eb:71:8d: 69:22:6d:0b:bb:04:b5:fc:87:c9:e0:54:6d:6f:bf: 0a:a9:cf:3e:77:50:c6:c9:8c:c3:34:fc:93:ee:20: 79:37:51:9b:e6:1f:53:c7:12:90:e0:38:a8:87:55: 18:a1:44:9c:89:94:70:a3:5b:9a:a8:f1:ed:f0:bd: f8:34:27:f4:25:39:68:bf:bd:57:ea:65:8c:a1:90: a5:d3:b2:de:67:43:ce:ff:58:5f:2d:f1:22:bf:e3: f0:1f:54:0c:09:c2:12:cb:e5:51:84:3f:88:6b:b6: a8:d8:6b:27:bf:b5:17:ca:83:c5:b1:d8:ba:c3:06: 87:03:fc:3a:9a:ca:bc:ed:a9:72:66:ba:43:0c:e5: cc:be:ce:92:a9:8c:52:99:3b:ab:f2:2f:fd:dd:05: 04:41:35:a9:9b:f8:5f:78:3b:5f:66:26:f0:aa:c6: 7c:2e:54:ca:11:4d:81:b1:56:e7:a0:7f:72:c0:54: 26:f7:cd:6a:e1:c2:1b:9e:1f:93:c2:46:85:45:97: 9b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:3E:8B:A4:64:63:DC:F6:11:DB:96:BD:5E:06:B1:08:D0:1E:52:66 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FD6LpGRj3PYR25a9XgaxCNAeUmY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.254.16.0/21 Signature Algorithm: sha256WithRSAEncryption 79:a2:4e:3c:95:66:96:fe:c6:5b:1d:94:0a:55:6d:b0:cf:f2: 66:95:b4:c0:ff:7d:31:62:de:28:d6:96:1b:cc:cc:4e:c2:16: 1d:07:f4:60:3f:84:cb:fc:f0:75:93:37:1b:04:c3:b8:9a:0e: 28:c1:44:57:7f:81:09:aa:9a:b2:bd:1d:ca:51:47:58:9c:94: 35:45:29:84:b3:b1:24:a6:cc:0d:f3:1c:15:9c:03:13:ab:47: 4c:a9:93:b6:b1:84:9e:70:dc:59:39:04:93:c6:cb:e5:27:5f: 3b:d7:74:0b:32:48:fb:8b:b6:30:fa:6a:12:f2:ae:f8:de:49: 95:68:3f:5f:90:b0:1d:e7:96:4d:63:3e:e3:cb:f6:52:b6:72: a7:0c:f8:3c:2a:89:39:1f:83:84:f9:9e:c1:13:f5:2f:3e:cc: 7b:35:c9:83:1a:07:78:51:4f:2d:1f:9c:20:60:b6:68:64:90: 15:58:01:af:47:0d:37:fc:6f:57:38:b6:dd:ae:35:63:ad:42: 69:c4:d2:92:fd:e4:7a:7f:98:7a:35:43:98:25:b8:bd:79:a6: 8f:95:37:2b:59:49:85:35:4c:e6:c6:39:5c:02:ab:95:70:57: b4:9c:c3:ab:d7:82:51:87:1b:f7:8d:6d:96:3c:77:cf:69:ff: ea:4d:30:4d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICI/UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTAyMTAx NDE4MDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE0M0U4QkE0NjQ2M0RD RjYxMURCOTZCRDVFMDZCMTA4RDAxRTUyNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7W1Lz+kF+ZEY8uXF2eQBkJ5s3Z0OSKPEu+0ahvpzBpzYDH3ky 6vnfjH2Ns5uzPrLGU/SFyTtoIutxjWkibQu7BLX8h8ngVG1vvwqpzz53UMbJjMM0 /JPuIHk3UZvmH1PHEpDgOKiHVRihRJyJlHCjW5qo8e3wvfg0J/QlOWi/vVfqZYyh kKXTst5nQ87/WF8t8SK/4/AfVAwJwhLL5VGEP4hrtqjYaye/tRfKg8Wx2LrDBocD /DqayrztqXJmukMM5cy+zpKpjFKZO6vyL/3dBQRBNamb+F94O19mJvCqxnwuVMoR TYGxVuegf3LAVCb3zWrhwhueH5PCRoVFl5sxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFD6LpGRj3PYR25a9XgaxCNAeUmYwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0ZENkxwR1JqM1BZUjI1YTlY Z2F4Q05BZVVtWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN6 /hAwDQYJKoZIhvcNAQELBQADggEBAHmiTjyVZpb+xlsdlApVbbDP8maVtMD/fTFi 3ijWlhvMzE7CFh0H9GA/hMv88HWTNxsEw7iaDijBRFd/gQmqmrK9HcpRR1iclDVF KYSzsSSmzA3zHBWcAxOrR0ypk7axhJ5w3Fk5BJPGy+UnXzvXdAsySPuLtjD6ahLy rvjeSZVoP1+QsB3nlk1jPuPL9lK2cqcM+DwqiTkfg4T5nsET9S8+zHs1yYMaB3hR Ty0fnCBgtmhkkBVYAa9HDTf8b1c4tt2uNWOtQmnE0pL95Hp/mHo1Q5gluL15po+V NytZSYU1TObGOVwCq5VwV7Scw6vXglGHG/eNbZY8d89p/+pNME0= -----END CERTIFICATE-----Generated at Thu Apr 17 21:01:57 2025 by rpki-client